Route Origin Authorization
$ rpki-client -vvf rpki-repository.nic.ad.jp/ap/A91A73810000/234/VSQZQLckALTukP5bsAvC3KVjh_8.roa
File: VSQZQLckALTukP5bsAvC3KVjh_8.roa (raw, json)
Hash identifier: MBZSCYxeUZxq/Q6uyOjetl05qgAYiHK7tQr8kn+FtCw=
Subject key identifier: 55:24:19:40:B7:24:00:B4:EE:90:FE:5B:B0:0B:C2:DC:A5:63:87:FF
Certificate issuer: /CN=500EF358BCBE14A358CA4EEE41B4E90DC923E9D2
Certificate serial: 61
Authority key identifier: 50:0E:F3:58:BC:BE:14:A3:58:CA:4E:EE:41:B4:E9:0D:C9:23:E9:D2
Authority info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/UA7zWLy-FKNYyk7uQbTpDckj6dI.cer
Subject info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/234/VSQZQLckALTukP5bsAvC3KVjh_8.roa
Signing time: Wed 01 Feb 2023 01:30:05 +0000
ROA not before: Wed 01 Feb 2023 01:30:05 +0000
ROA not after: Mon 15 Jan 2024 01:30:02 +0000
asID: 9351
IP address blocks: 202.91.208.0/20 maxlen: 20
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 97 (0x61)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=500EF358BCBE14A358CA4EEE41B4E90DC923E9D2
Validity
Not Before: Feb 1 01:30:05 2023 GMT
Not After : Jan 15 01:30:02 2024 GMT
Subject: CN=55241940B72400B4EE90FE5BB00BC2DCA56387FF
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:de:03:06:75:22:65:6f:a8:7f:dc:e0:46:71:20:
60:88:83:b3:3a:04:35:d5:8c:ee:65:9c:2f:4b:ff:
75:b9:9b:ca:3a:61:c9:a1:d1:f3:44:16:38:c7:b0:
16:8d:7e:ee:76:86:0d:db:7b:71:0c:6e:2a:40:dc:
f7:59:d4:97:d8:64:7d:8a:1c:85:74:3f:ac:51:b5:
cb:26:74:11:d1:12:de:71:55:bc:c5:c8:35:41:de:
48:67:77:9f:ef:eb:51:86:1b:b8:2e:3f:e9:4d:dc:
76:f9:60:e6:a8:5f:35:ea:65:e6:f9:55:ec:d9:72:
1e:d3:96:d6:c5:1f:14:f5:4f:73:30:9f:96:6a:60:
da:c2:01:08:e9:28:c5:30:ae:a8:49:39:e2:13:39:
11:fe:5a:78:01:63:40:8b:e7:9c:f9:06:27:38:28:
db:5a:12:db:a0:e9:e2:7d:9f:3f:dc:bb:c3:4c:d9:
4d:98:b4:66:f4:b4:5b:5c:0c:57:65:03:f4:12:64:
12:23:fe:d9:7c:e5:aa:ca:ed:19:aa:74:64:b2:6d:
9d:d6:fb:f8:dc:60:4a:b1:52:9f:20:13:34:10:e4:
47:97:32:36:cb:6d:da:ed:47:1d:c7:db:80:94:b7:
86:46:46:c5:54:14:95:c6:cc:d3:fb:e7:84:49:df:
3b:f5
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
55:24:19:40:B7:24:00:B4:EE:90:FE:5B:B0:0B:C2:DC:A5:63:87:FF
X509v3 Authority Key Identifier:
keyid:50:0E:F3:58:BC:BE:14:A3:58:CA:4E:EE:41:B4:E9:0D:C9:23:E9:D2
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/234/UA7zWLy-FKNYyk7uQbTpDckj6dI.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/UA7zWLy-FKNYyk7uQbTpDckj6dI.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/234/VSQZQLckALTukP5bsAvC3KVjh_8.roa
RPKI Notify - URI:https://rpki-repository.nic.ad.jp/rrdp/ap/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
202.91.208.0/20
Signature Algorithm: sha256WithRSAEncryption
75:82:b2:12:fb:6d:b8:cf:7f:4c:b2:eb:a8:81:70:f9:59:65:
76:f5:f1:7a:f2:6d:0a:fb:87:52:e4:40:d2:ce:38:cb:91:5c:
a9:ce:a2:69:20:22:64:68:b2:7a:86:36:a9:92:fb:fb:92:46:
7f:24:51:22:41:fb:73:b0:ce:e7:f9:ac:57:df:da:2e:d9:fe:
a9:70:fa:a8:f9:0b:80:b6:1c:e7:e9:d6:6a:65:c9:c7:91:70:
bc:9f:58:3f:5e:3b:61:8c:6e:75:d5:21:61:a1:74:5a:a1:17:
cd:09:d5:72:d9:d6:21:fc:9b:11:84:32:74:be:40:d8:15:8d:
13:d7:6a:6c:78:12:7f:0a:96:ba:0b:81:03:8f:93:d6:83:20:
60:67:52:d4:b2:43:12:c1:6d:c0:52:ca:84:5b:56:b8:78:71:
54:3c:4b:61:35:ed:36:39:4b:2e:6e:ca:f0:b2:d5:ac:87:b1:
c3:f5:1d:fe:16:62:90:b2:18:4d:be:46:e4:d6:77:52:a3:b7:
ce:c4:27:14:15:63:44:99:ee:69:68:51:7e:4f:b0:3b:8f:95:
1a:3a:0f:ad:c1:85:3a:44:3e:1d:1b:f8:4e:47:e3:b5:91:d0:
68:a3:ba:d1:23:4c:0c:8a:48:f6:a6:b5:00:16:f1:d4:8a:5c:
d9:ee:11:51
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Feb 16 22:14:40 2025 by rpki-client